CVE-2021-42205

Name of the Vulnerable Software and Affected Versions ELAN Miniport touchpad Windows driver versions prior to 24.21.51.2

Description The issue allows local users to cause a system crash by sending a certain IOCTL request, because that request is handled twice. This is related to the handling of specific requests by the driver.

Recommendations For versions prior to 24.21.51.2, update to version 24.21.51.2 or later to resolve the issue. As a temporary workaround, consider restricting access to the IOCTL request handling mechanism until a patch is available.